ReportWire

Tag: WA State Wire

  • Microsoft will pay $20M to settle U.S. charges of illegally collecting children’s data

    Microsoft will pay $20M to settle U.S. charges of illegally collecting children’s data

    [ad_1]

    SAN FRANCISCO (AP) — Microsoft will pay a fine of $20 million to settle Federal Trade Commission charges that it illegally collected and retained the data of children who signed up to use its Xbox video game console.

    The agency charged that Microsoft gathered the data without notifying parents or obtaining their consent, and that it also illegally held onto the data. Those actions violated the Children’s Online Privacy Protection Act, the FTC stated.

    In a blog post, Microsoft corporate vice president for Xbox Dave McCarthy outlined additional steps the company is now taking to improve its age verification systems and to ensure that parents are involved in the creation of child accounts for the service. These mostly concern efforts to improve age verification technology and to educate children and parents about privacy issues.

    McCarthy also said the company had identified and fixed a technical glitch that failed to delete child accounts in cases where the account creation process never finished. Microsoft policy was to hold that data no longer than 14 days in order to allow players to pick up account creation where they left off if they were interrupted.

    The settlement must be approved by a federal court before it can go into effect, the FTC said.

    [ad_2]

    Source link

  • Microsoft: State-sponsored Chinese hackers could be laying groundwork for disruption

    Microsoft: State-sponsored Chinese hackers could be laying groundwork for disruption

    [ad_1]

    BOSTON (AP) — State-backed Chinese hackers have been targeting U.S. critical infrastructure and could be laying the technical groundwork for the potential disruption of critical communications between the U.S. and Asia during future crises, Microsoft said Wednesday.

    The targets include sites in Guam, where the U.S. has a major military presence, the company said.

    Hostile activity in cyberspace — from espionage to the advanced positioning of malware for potential future attacks — has become a hallmark of modern geopolitical rivalry.

    Microsoft said in a blog post that the state-sponsored group of hackers, which it calls Volt Typhoon, has been active since mid-2021. It said organizations affected by the hacking — which seeks persistent access — are in the communications, manufacturing, utility, transportation, construction, maritime, information technology and education sectors.

    Separately, the National Security Agency, the FBI, the Cybersecurity and Infrastructure Security Agency (CISA) and their counterparts from Australia, New Zealand, Canada and Britain published a joint advisory sharing technical details on “the recently discovered cluster of activity.”

    A Microsoft spokesman would not say why the software giant was making the announcement now or whether it had recently seen an uptick in targeting of critical infrastructure in Guam or at adjacent U.S. military facilities there, which include a major air base.

    John Hultquist, chief analyst at Google’s Mandiant cybersecurity intelligence operation, called Microsoft’s announcement “potentially a really important finding.”

    “We don’t see a lot of this sort of probing from China. It’s rare,” Hultquist said. “We know a lot about Russian and North Korean and Iranian cyber-capabilities because they have regularly done this.” China has generally withheld use of the kinds of tools that could be used to seed, not just intelligence-gathering capabilities, but also malware for disruptive attacks in an armed conflict, he added.

    Microsoft said the intrusion campaign placed a “strong emphasis on stealth” and sought to blend into normal network activity by hacking small-office network equipment, including routers. It said the intruders gained initial access through internet-facing Fortiguard devices, which are engineered to use machine-learning to detect malware.

    The maker of Fortiguard devuces, Fortinet, did not immediately respond to an email seeking further details.

    “For years, China has conducted aggressive cyber operations to steal intellectual property and sensitive data from organizations around the globe,” said CISA Director Jen Easterly, urging mitigation of affected networks to prevent possible disruption. Bryan Vorndran, the FBI cyber division assistant director, called the intrusions “unacceptable tactics” in the same statement.

    Tensions between Washington and Beijing — which the U.S. national security establishment considers its main military, economic and strategic rival — have been on the rise in recent months.

    Those tensions spiked last year after then-House Speaker Nancy Pelosi’s visit to democratically governed Taiwan, leading China, which claims the island as its territory, to launch military exercises around Taiwan.

    U.S.-China relations became further strained earlier this year after the U.S. shot down a Chinese spy balloon that had crossed the United States.

    [ad_2]

    Source link

  • FACT FOCUS: Fake image of Pentagon explosion briefly sends jitters through stock market

    FACT FOCUS: Fake image of Pentagon explosion briefly sends jitters through stock market

    [ad_1]

    An image of black smoke billowing next to a bureaucratic-looking building spread across social media Monday morning, with the claim that it showed an explosion near the Pentagon.

    The posts sent a brief shiver through the stock market as they were quickly picked up by news outlets outside the U.S., before officials jumped in to clarify that no blast actually took place and the photo was a fake.

    Experts say the viral image had telltale signs of an AI-generated forgery, and its popularity underscores the everyday chaos these now increasingly sophisticated and easy-to-access programs can inflict.

    Here’s a closer look at the facts.

    CLAIM: An image shows an explosion near the Pentagon.

    THE FACTS: Police and fire officials in Arlington, Virginia, say the image is not real and there was no incident at the U.S. Department of Defense headquarters across the Potomac from the nation’s capital.

    Despite this, the image and claim was spread by outlets including RT, a Russian government-backed media company formerly known as Russia Today. It was also widely shared in investment circles, including an account bearing Twitter’s signature blue verification check mark that falsely suggested it was associated with Bloomberg News.

    “Reports of an explosion near the Pentagon in Washington DC,” the Russian state news agency wrote in a since-deleted tweet to its more than three million followers.

    RT confirmed it took down the tweet and “covered the official position from the Pentagon on the matter” after verifying the reports were inaccurate.

    “As with fast-paced news verification, we made the public aware of reports circulating and once provenance and veracity were ascertained, we took appropriate steps to correct the reporting,” the company wrote in an emailed statement Tuesday.

    Still the timing of the fake image, which appeared to spread widely just after the U.S. stock market opened for trading at 9:30 a.m., was enough to send a ripple through the investment world.

    The S&P 500 briefly dropped a modest 0.3% as social media accounts and investment websites popular with day traders repeated the false claims.

    Other investments also moved in ways that typically occur when fear enters the market. Prices for U.S. Treasury bonds and gold, for example, briefly began to climb, suggesting investors were looking for someplace safer to park their money.

    The image’s rapid spread prompted the Arlington County Fire Department to take to social media to knock down the rumors.

    “@PFPAOfficial and the ACFD are aware of a social media report circulating online about an explosion near the Pentagon,” the agency wrote, referring to the acronym for the Pentagon Force Protection Agency that polices the Pentagon. “There is NO explosion or incident taking place at or near the Pentagon reservation, and there is no immediate danger or hazards to the public.”

    Capt. Nate Hiner, a spokesperson for the fire department, confirmed the agency’s tweet was authentic but declined to comment further, deferring to the Pentagon police force, which didn’t respond to email and phone messages.

    Misinformation experts say the fake image was likely created using generative artificial intelligence programs, which have allowed increasingly realistic, but oftentimes flawed, visuals to flood the internet recently.

    Inconsistencies in the building, fence and surrounding area are imperfections typically found in AI-generated images, noted Hany Farid, a computer science professor at the University of California, Berkeley, who specializes in digital forensics, misinformation and image analysis.

    “Specifically, the grass and concrete fade into each other, the fence is irregular, there is a strange black pole that is protruding out of the front of the sidewalk but is also part of the fence,” he wrote in an email. “The windows in the building are inconsistent with photos of the Pentagon that you can find online.”

    Chirag Shah, co-director of the Center for Responsibility in AI Systems & Experiences at the University of Washington in Seattle, cautioned that spotting fakes won’t always be as obvious.

    Society will need to lean more on “crowdsourcing and community vigilance to weed out bad information and arrive at the truth” as AI technology improves, he argued.

    “Simply relying on detection tools or social media posts are not going to be enough,” Shah wrote in an email.

    Before the explosion hoax, the biggest Beltway intrigue on Wall Street’s mind Monday morning was whether the U.S. government will avoid a disastrous default on its debt.

    But as the market is becoming increasingly reactive to headline-grabbing news, misinformation can be especially damaging when it’s shared by outlets even vaguely deemed as credible, said Adam Kobeissi, editor-in-chief at The Kobeissi Letter, an industry publication.

    “A lot of these moves are happening because of high frequency trading, algorithmic trading, which is basically taking headlines, synthesizing them and then breaking them down into a trade on a millisecond basis,” he explained by phone, noting that much of the market is now automated. “It’s basically like you’re pulling a trigger every time a headline comes out.”

    __

    Associated Press business reporters Stan Choe and Wyatte Grantham-Philips in New York contributed to this story.

    ___

    This is part of AP’s effort to address widely shared misinformation, including work with outside companies and organizations to add factual context to misleading content that is circulating online. Learn more about fact-checking at AP.

    [ad_2]

    Source link